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DETAILED ACTION 

1 . This office action is in response to Applicant's Request for Continued 
Examination (RCE) filed on June 13, 2005. Claims 1, 16, 21, 26, 31 and 46 have 
been amended. Claims 1-51 are pending. 



Response to Arguments 

2. Applicant's arguments filed 6/23/2005 have been fully considered but they 
are not persuasive. 

In response to Applicant's remark on pages 13-14, Applicant challenge the 
Examiner to produce evidence that "a computerized security preference 
exchange as claimed was known prior to Applicant's filing date". However, after 
reconsider the cited prior art for examination, Examiner notes that in col. 11, lines 
40-50, Lewis "referring briefly to Fig. 2, the processor" (mobile station) "generates 
the packet requesting the current encrypt key..." from the access device to be 
used to establish secure wireless communication would have met the cited 
limitation of "sending, by the station to the access point through a setup 
connection a request for a security preference for the access point" which the 
Examiner previously stated as an inherent feature. Examiner further notes that 
the claimed limitation does not recite "a computerized security preference 
exchange" as Applicant argues in the remark (remark, page 13, last paragraph 
and page 14, first paragragh). Therefore, providing an evident to support the 
Examiner's assertion of inherent feature is not deemed necessary at this time. 
Applicant further contends that when citing the Specification, the Examiner 
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inappropriately left out the key phrase of "In the present example..." and it is 
improper to limit Applicant's claimed invention to only one encryption operation. 
Examiner agrees that Applicant reserves the right to claim a broader claim. 
However, for the purpose of applying the prior art, it is appropriate to interpret the 
claimed limitation as reasonably broad as possible in light of the Specification. In 
the Specification, the authentication information, as Applicant points out and 
discloses encompass different types of data, for example, on page 4, line 20 to 
page 5, line 3 in the Specification, the "authentication can be a user name and 
password, an encrypted challenge such as used in the Challenge Handsake 
Authentication Protocol, or other types of data typically used to authenticate 
clients on the network. In one aspect, the first and second keys are identical 
keys. In another aspect, the first key is a public key for the access point and the 
second key is a public key for the station". Therefore, as long as the cited prior 
art meets one of the elements discloses in the Specification, the rejection is 
improper. 

In response to Applicant's challenge to provide evident to support 
Examiner's previous assertion that whether data is received through one or 
multiple intermediate computers would not be considered patentable distinct, a 
prior art is herein provided (U.S. Patent No. Kung et al. 6,889,321, col. 32, lines 
13-26). 



Claim Rejections - 35 USC § 102 
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3. The following is a quotation of the appropriate paragraphs of 35 

U.S.C. 102 that form the basis for the rejections under this section made in this 

Office action: 

A person shall be entitled to a patent unless - 

(a) the invention was known or used by others in this country, or patented or described in a printed 
publication in this or a foreign country, before the invention thereof by the applicant for a patent. 

Claims 1,16,21, 26, 31 , 36, 42 and 46 are rejected under 35 
U.S.C. 102(a) as being anticipated by Patiyoot et al. ("Technique for 
authentication protocols and key distribution on wireless ATM networks", ACM 
SIGOPS Operating System Review, Volume 32, Issue 4, October 1998). 

In respect to claim 1 , Lewis discloses a computerized method of 
establishing a secure wireless communications channel between an access point 
and a station, the channel being encrypted with a channel key, the method 
comprising: 

sending, by the station to the access point through a setup connection, a 
request for a security preference for the access point (WAT- station; WAS- 
access point pages 25-27, 2.2-4.2.1), 

sending, by the access point to the station through the setup connection, 
the security preference in response to the request when the access point can 
support the channel (page 27, 4.1 and 4.2.1) 

sending, by the station to the access point through the setup connection, 
the authentication information (page 27, 4.1 and 4.2.1); 
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validating, by the access point, the station using the authentication 
information; encrypting, by the access point, the channel key using a second key 
when the station is validated (page 27, 4.1 and 4.2.1); 

sending, by the access point to the station through the setup connection, 
the encrypted channel key (page 27, 4.2.1); 

decrypting, by the station, channel key in response to receiving the 
encrypted channel key; and sending, by the station to the access point, data 
encrypted with the channel key to establish the channel (page 27, 4.2.1). 

In respect to claims 16, 21 , 26, 31 , 36, 42 and 46, the claimed limitations 
are similar to claim 1 . Therefore, the claims are rejected based on the similar 
rationale. 

Claim Rejections - 35 USC § 103 

4. The following is a quotation of 35 U.S.C. 1 03(a) which forms the basis for 
all obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described 
as set forth in section 1 02 of this title, if the differences between the subject matter sought to 
be patented and the prior art are such that the subject matter as a whole would have been 
obvious at the time the invention was made to a person having ordinary skill in the art to which 
said subject matter pertains. Patentability shall not be negatived by the manner in which the 
invention was made. 

Claims 1-3, 9-17, 19-22, 24-27, 29-32, 34-38, 40-48 and 50-51 are 
rejected under 35 U.S.C. 103(a) as being unpatentable over Lewis (U.S. Patent 
No. 6,526,506) in view of Quick Jr. (U.S. Patent No. 6,178,506, hereinafter 
Quick) 
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In respect to claim 1 , Lewis discloses a computerized method of 
establishing a secure wireless communications channel between an access point 
and a station, the channel being encrypted with a channel key, the method 
comprising: 

sending, by the station to the access point through a setup connection, a 
request for a security preference for the access point (see Lewis, Fig. 6 and col. 
10, line 46-col. 11, line 40); 

sending, by the access point to the station through the setup connection, 
the security preference in response to the request when the access point can 
support the channel (see Lewis, col. 12, line 60-col. 13, line 15); 

sending, by the station to the access point through the setup connection, 
the authentication information (see Lewis, col. 4, lines 27-42); 

validating, by the access point, the station using the authentication 

information; encrypting, by the access point, the channel key using a 
second key 

when the station is validated (see Lewis, col. 4, lines 27-42 and col. 5, 
lines 29-41); 

sending, by the access point to the station through the setup connection, 

the encrypted channel key (see Lewis, col. 5, lines 29-41); 

decrypting, by the station, channel key in response to receiving the 
encrypted channel key; and sending, by the station to the access point, 

data encrypted with the channel key to establish the channel (see Lewis, col. 5, 

line 10-col. 6, line 17). 
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Lewis discloses the mobile terminal sending authentication information 
(registering) with the access point (see Lewis, col. 4, lines 28-35) but does not 
explicitly discloses encrypting the authentication information. However, Quick 
discloses encrypting authentication information from mobile terminal to access 
point (Quick, col. 3, lines 1-10). Therefore, it would have been obvious to one of 
ordinary skill in the art at the time the invention was made to incorporate the 
teaching of Quick's encrypting the authentication information with the teaching of 
Lewis' registering the mobile terminal with the access point in order to protect the 
user identification and password from compromise during the registration 
process (Quick, col. 2, lines 46-49). 

In respect to claim 2, Lewis and Quick disclose the method of claim 1 , 
wherein the first and second keys are a self-distributed key (see Quick, col. 4, 
line 45-col. 5, line 8). 

In respect to claim 3, Lewis discloses the method of claim 1 , Lewis 
wherein the first and second keys are a self distributed key and further 
comprising: 

generating, by the access point, the self-distributed key using a security 
algorithm when the security preference is shared key; generating, by the station 
and sending to the access point, a first value using the security algorithm in 
response to receiving the security preference of shared key; generating, by the 
access point, and sending to the station, a second value using the security 
algorithm and the first value in response to receiving the first value; and 
calculating, by the station, the self-distributed key using the security algorithm 
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and the second value in response to receiving the second value (see Quick, col. 
4, line 45-col. 5, line 8). 

In respect to claim 9, Lewis and Quick disclose the method of claim 2 
further comprising: 

encrypting, by the station, a name and password with the first key to 
generate the authentication information; and decrypting, by the access point, the 
name and password to validate the station (see Quick, col. 4, line 45-col. 5, line 
8). 

In respect to claim 10, Lewis and Quick disclose the method of claim 2 
further comprising: 

sending, by the access point to the station, a challenge; encrypting, by the 
station, the challenge with the first key to generate the authentication information; 
encrypting, by the access point, the challenge with the first key; and comparing, 
by the access point, the authentication information with the challenge encrypted 
by the access point with the first key to validate the station (see Quick, 
col. 4, line 45-col. 5, line 8) 

In respect to claim 1 1 , Lewis and Quick disclose the method of claim 1 , 
wherein the first key is a public key of a public-private key pair for the access 
point, and the second key is a public key of a public-private key pair for the 
station (see Quick, col. 4, line 45 -col. 5, line 8). 

In respect to claim 12, Lewis and Quick disclose the method of claim 1 1 
further comprising: 

sending, by the access point to the station, the first key; and. 
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sending, by the station to the access point, the second key (see Quick col. 
4, line 45-col. 5, line 8) 

In respect to claim 13, Lewis and Quick disclose the method of claim 12, 
wherein the second key is sent to the access point when the request for the 
security preference is sent by the station (see Quick, col. 4, line 45-col. 5, line 8). 

In respect to claim 14, Lewis and Quick disclose the method of claim 12, 
wherein the first key is sent to the station when the security preference is sent by 
the access point (see Quick, col. 4, line 45-col. 5, line 8). 

In respect to claim 15, Lewis discloses the method of claim 1 , wherein 
establishing the channel creates a standard wired equivalent privacy (WEP) 
network, and the station and the access point exchange messages conforming to 
a format required by the standard that defines a WEP network to establish the 
WEP network (see Lewis, col. 2, lines 18-43). 

In respect to claim 16, 21 , 26, 31 and 36-37, 40, 42-47 and 50, the claim 
limitations are substantially similar to claim 1. Therefore, claims 16, 21, 26, 31, 
36-37, 40, 42-47 and 50 are rejected based on the similar rationale. 

In respect to claim 17, the claim limitation is substantially similar to claim 
3. Therefore, claim 17 is rejected based on the similar rationale. 

In respect to claim 19, the method of claim 16 further comprising: 

using a first key to generate the authentication information; and 
using a second key to decrypt the encrypted channel key (see Lewis, col. 5, line 
10-col. 6, line 17). 

In respect to claims 20, 25, 30, 35, 41 and 51 , the claim limitations are 
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substantially similar to claim 11. Therefore, claims 20, 25, 30 and 35 are rejected 
based on the similar rationale. 

In respect to claims 24, 29 and 34, the claim limitations are substantially similar 
to claim 19. Therefore, claims 24, 29 and 34 are rejected based on the similar 
rationale. 

In respect to claim 22, the claim limitation is substantially similar to claim 
3. Therefore, claim 22 is rejected based on the similar rationale. 

In respect to claim 27, the claim limitation is substantially similar to claim 
17. Therefore claim 27 is rejected based on the similar rationale. 
In respect to claim 32, the claim limitation is substantially similar to claim 22. 
Therefore, claim 32 is rejected based on the similar rationale. 

In respect to claim 38, Lewis and Quick disclose the secure wireless 
network of claim 37, wherein access point if further operable for encrypting the 
shared channel key using a self-distributed key for sending to the station and the 
station is further operable for decrypting the shared channel key upon receipt 
(see Quick, col. 4, line 45-col. 5, line 8). 

In respect to claim 48, the claim limitation is substantially similar to claim 
38. Therefore, claim 48 is rejected based on the similar rationale. 

5. Claims 4-8, 18, 23, 28, 33, 39 and 49 are rejected under 35 U.S.C. 103(a) 
as being unpatentable over Lewis (U.S. Patent No. 6,526,506) in view of Quick 
Jr. (U.S. Patent No. 6,178,506, hereinafter Quick) and further in view of Schneier 
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("Applied Cryptography, Second Edition, Protocols, Algorithms, and Source Code 
in C", John Wiley & Sons, Inc., 1996, hereinafter Schneier). 

In respect to claim 4, Lewis and Quick disclose the method of claim 3. 
Lewis and Quick do not disclose but Schneier discloses wherein the security 
algorithm is g mod p and further comprising: obtaining, by the access point, 
integers x, g and p to generate the self-distributed key k = g" mod p; obtaining, by 
the station, the integers g and p, and an integer y to generate the first value Y = 
g' mod p; generating, by the access point, the second value X = Yx mod p; and 
setting, by the, z equal to y - to calculate the self-distributed key k = XZ mod p 
(see Schneier, page 515, Hughes). Therefore, it would have been obvious to one 
of ordinary skill in the art at the time the invention was made to modify the 
teaching of Schneier with the teaching of Lewis's wireless communication 
between mobile and access point and Quick's Diffie-Hellman's protocol with 
Schneier's teaching of Hughes' protocol so that key can be computed before any 
interaction between the mobile station and the access point (see Schneier, page 
515, Hughes and Key Exchange Without Exchanging Keys). 

In respect to claim 5, Lewis, Quick and Schneier disclose the method of 
claim 4 wherein obtaining, by the station, the integers g and p comprises: 

sending, by the access point (Bob) to the station (Alice), the integers for g 
and p (see Schneier, page 515, g and n). 

In respect to claim 6, Lewis, Quick and Schneier disclose the method of 
claim 5, wherein the integers for g and p (g and n) are sent to the station (Alice) 
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when the security preferences are sent by the access point (Bob) (see Schneier, 
page 51 5 t Hughes). 

In respect to claim 7, Lewis, Quick and Schneier disclose the method of 
claim 5, wherein g and p are sent to the station when a user name and password 
for the station are registered with the access point (see Quick, col. 4, line 60 to 
col. 5, line 8). 

In respect to claim 8, Lewis, Quick and Schneier discloses the method of 
claim 4 further comprising: 

publishing, by the access point, the integers g and p for a set of stations 
(see Schneier, page 515). 

In respect to claims 18, 23, 28 and 33, the claim limitations are 
substantially similar to claim 4. Therefore, claims 18, 23, 28 and 33 are rejected 
based on the similar rationale. 

In respect to claim 39, Lewis and Quick disclose the secure wireless 
network of claim 38. Lewis and Quick do not disclose but Schneier discloses 
wherein the station and the access point are further operable for calculating the 
self-distributed key by exchanging messages in accordance with the Hughes 
transmission protocol (see Schneier, page 515, Hughes). Therefore, it would 
have been obvious to one of ordinary skill in the art at the time the invention was 
made to modify the teaching of Schneier with the teaching of Lewis's wireless 
communication between mobile and access point and Quick's Diffie-Hellman's 
protocol with Schneier's teaching of Hughes' protocol so that key can be 
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computed before any interaction between the mobile station and the access point 
(see Schneier, page 515, Hughes and Key Exchange Without Exchanging Keys). 

In respect to claim 49, the claim limitation is substantially similar to claim 
39. Therefore, claim 49 is rejected based on the similar rationale. 



6 Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to Tongoc Tran whose telephone number is 
(571 ) 272-3843. The examiner can normally be reached on 8:30-5:00. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Gregory Morse can be reached on (571) 272-3838. The 
fax phone number for the organization where this application or proceeding is 
assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from 
the Patent Application Information Retrieval (PAIR) system. Status information 
for published applications may be obtained from either Private PAIR or Public 
PAIR. Status information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, see http://pair- 
direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll- 
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free). 
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